Canadian Health Agency admits to Major Hack 
(24/12/2007)
Database disasters are not just confined to UK government agencies, after sensitive patient information has been accessed by persons unknown on a Canadian health agency computer.
According to Health Minister Ross Wiseman, the data, including lab test results for infectious diseases such as HIV and hepatitis along with patient names and health numbers, was stored on a government desktop computer, which was taken to the home of a consultant working for the Provincial Public Health Laboratory.
"Police in Newfoundland are reported to be investigating to what degree hackers have accessed medical information" said Calum Macleod, european director with Cyber-Ark. "The case came to light lafter a health agency issued a media release on the hack of the data, which was collated by the Provincial Public Health Laboratory in Newfoundland," he added. According to Macleod, the consultant only became aware of the hack when he was called by someone who identified himself as a representative of a computer security company.
"Newfoundland and Labrador Health Minister Ross Wiseman says that health department guidelines have been broken by the consultant concerned, but that doesn't detract from the fact that the release of sensitive medical information could be a personal disaster for the patients concerned," he said.
"It's bad enough for a patient to be HIV positive, but then being told there is a risk that their medical status could be broadcast on the Internet is additional, and unnecessary suffering," he added.
Macleod went to to say that, if the medical information on the consultant's computer had been encrypted, the hacking incident would never have occurred. "It’s clear after the recent disastrous HMRC loss of 25 million records in the UK and now that the Canadian’s have admitted to this dreadful breach of such private information, that lack of security in the public sector is clearly endemic right across the globe. I dread to think about all the other cases that we never get to hear about."
Related topics: Data management and data security Encryption
Print version | 
Email to a friend | 
Related articles
Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.
Other Security news and resources
Security News
Suppliers Directory
Jobs forum
Classifieds
Knowledge base
White papers
Research library
Security books
Special reports
Security interviews
Security companies
Security events
Security links
Security market
Product channels
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products
IT Security white papers and research library
Access Control Authentication Data Management Data Security Digital Signatures Email Security Identity Management Internet Security Intrusion Prevention Network Security Remote access security Security Management Security Policies Security Software Security Threats Virus Detection Software Virus Protection VPN Vulnerability Assessment Wireless Security
Security books, guides, standards and toolkits
RFID and Smart Cards books, guides and reference documents Biometric books, guides and reference documents CCTV books, guides and reference documents Intruder alarms and intrusion detection systems books, guides and reference documents Monitoring and surveillance books, guides and reference documents IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits Fire, Health & Safety books, guides and reference documents
